From 7e36e8160d2985ffb90f2198c755208cd598cd75 Mon Sep 17 00:00:00 2001
From: sinanmohd <sinan@sinanmohd.com>
Date: Wed, 23 Apr 2025 00:10:48 +0530
Subject: os/kay/firewall: refactor

---
 os/kay/modules/wireguard.nix | 10 +---------
 1 file changed, 1 insertion(+), 9 deletions(-)

(limited to 'os/kay/modules/wireguard.nix')

diff --git a/os/kay/modules/wireguard.nix b/os/kay/modules/wireguard.nix
index 4256dd3..21cec06 100644
--- a/os/kay/modules/wireguard.nix
+++ b/os/kay/modules/wireguard.nix
@@ -52,16 +52,8 @@ in {
       externalInterface = wanInterface;
       internalInterfaces = [ wgInterface ];
     };
-    firewall = {
-      allowedUDPPorts = [ port ];
-      extraCommands = ''
-        iptables -t nat -I POSTROUTING 1 \
-            -s ${subnet}/${toString prefix} \
-            -o ${wanInterface} \
-            -j MASQUERADE
-      '';
-    };
 
+    firewall.allowedUDPPorts = [ port ];
     wg-quick.interfaces.${wgInterface}.configFile = builtins.toString wgConf;
   };
 
-- 
cgit v1.2.3